Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/gTQVw15JaqRf8D7E7itgHRvZZA0.roa
File: gTQVw15JaqRf8D7E7itgHRvZZA0.roa (raw, json)
Hash identifier: 0H/ZNnnQ12aLKKd15vCm/CB25dSJgBldKncEyIlVTfU=
Subject key identifier: 81:34:15:C3:5E:49:6A:A4:5F:F0:3E:C4:EE:2B:60:1D:1B:D9:64:0D
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 0427639E
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/gTQVw15JaqRf8D7E7itgHRvZZA0.roa
Signing time: Sat 01 Jan 2022 12:04:54 +0000
ROA not before: Sat 01 Jan 2022 12:04:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35783
IP address blocks: 193.233.173.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69690270 (0x427639e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Jan 1 12:04:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=813415c35e496aa45ff03ec4ee2b601d1bd9640d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:88:ea:5d:32:ba:d6:fd:52:7e:5d:18:8d:cf:
f7:40:71:3b:ce:8e:9b:89:78:98:8e:d8:b6:88:76:
e4:c9:ad:a0:4f:76:6a:54:d7:fc:81:63:e3:d0:67:
84:69:91:6d:2e:9b:b8:74:80:80:a1:ae:c1:85:b6:
76:fd:54:39:c9:f0:6d:4e:d2:7e:60:4d:e4:b0:9f:
7b:2c:9b:ea:29:e3:ad:e7:76:12:7c:9f:67:af:ec:
fe:21:8d:1d:e3:49:84:2e:53:35:42:51:13:7b:6b:
ea:30:bc:b2:52:5b:da:0d:d8:8a:e3:75:95:46:b5:
c4:b8:25:23:9f:30:a3:72:d3:63:cf:4f:17:e3:ed:
c7:57:e5:bb:19:5e:30:95:c6:f6:ef:28:7b:8c:fb:
ef:ba:2c:52:a0:df:9d:5a:bf:dd:4c:bf:4a:b0:b4:
7c:09:9c:a9:43:55:15:64:95:05:3a:20:d8:54:d7:
6b:54:bc:24:fb:2d:21:f1:4d:c9:49:e8:ca:ec:1c:
76:4f:26:2f:4b:2f:23:70:67:4d:da:61:f3:9a:bd:
2f:25:77:69:e7:86:38:66:55:3e:43:30:ef:7d:8c:
52:3b:c6:8b:4a:04:de:8b:b4:dc:d0:c0:d9:9d:d6:
8e:6c:5f:bc:61:cc:73:43:22:75:db:15:c8:bf:f1:
f3:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:34:15:C3:5E:49:6A:A4:5F:F0:3E:C4:EE:2B:60:1D:1B:D9:64:0D
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/gTQVw15JaqRf8D7E7itgHRvZZA0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.173.0/24
Signature Algorithm: sha256WithRSAEncryption
25:6c:4f:d4:18:7d:ec:f5:2c:80:47:8c:77:21:e7:9f:67:bf:
9b:9a:af:c1:28:02:fd:5d:5e:22:c6:b1:49:96:da:e4:07:38:
b9:62:89:3c:60:f8:93:a0:6e:be:1b:9a:a4:91:48:67:82:26:
bb:d0:bc:32:2b:2c:0e:90:2c:e6:bb:42:67:35:3f:bf:fa:5d:
4c:37:5b:fa:19:6b:f8:24:d9:a6:5b:fb:b8:97:8d:ae:2c:3f:
29:9a:68:91:ab:c4:fc:aa:d4:3b:8a:fa:e0:e8:47:8d:33:48:
fe:90:4a:94:aa:56:39:c0:e1:35:b3:1f:81:6b:b3:75:70:69:
93:e8:dc:c0:c1:d5:82:76:ed:62:23:e2:53:97:a6:6a:eb:76:
2d:6d:dc:b5:3e:67:33:d7:39:61:11:ff:8c:ad:88:9e:16:67:
80:3a:da:cd:83:a8:75:57:f3:e7:70:6a:a9:8b:35:9c:a6:4a:
7c:ed:37:a4:24:50:ae:de:83:1c:8c:b4:1a:90:53:78:c7:44:
3f:1d:01:9b:51:44:85:a8:5c:5f:b4:49:d0:b3:ec:2d:d5:46:
4e:a3:f7:fa:a2:92:91:5d:c1:05:a7:3d:d2:6d:14:d1:16:4b:
7b:cd:e4:a4:17:12:1b:23:d0:03:2a:b4:fe:0b:e2:eb:8c:85:
d1:07:26:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:31 2023 by rpki-client on console-ams.rpki-client.org